Hi, I'm developing a web service to be accessed through a HTTPS connection (SSL), I've configured Tomcat to enable SSL and I've created the appropiate certificates and the keystore for server and client authentication. The service works without any problem but the question is:
How can I obtain the client's certificate on the server side (web service)?
I mean, JBoss (Tomcat server) can authenticate the client correctly and the server "knows" who the client is, but I need the certificate on aplication level for some process, not only on comunication level.
In other way, how can I obtain the IP address of the client.